Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp1286956yba; Thu, 4 Apr 2019 07:53:50 -0700 (PDT) X-Google-Smtp-Source: APXvYqxjcjlew08LU/HULrLWwQjOE//niQoBLvczUrqHbicYNx29ZG+/CqdQVW4zHTVNbcvW+GEE X-Received: by 2002:a63:408:: with SMTP id 8mr6256329pge.334.1554389630499; Thu, 04 Apr 2019 07:53:50 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1554389630; cv=none; d=google.com; s=arc-20160816; b=EXcqEbPnBf/59XWL1MwX/5uulJ1pBDGTdoTwvQwKwvl0DGnW2sy9ZpMq0sRYYZjjif FvaONkHTIKPtkehAJObpJlaTyhrq3L0krFJ+PJVoe99Co19+DmWsaCmHmGRiFcfStBKu 7jcojtk/JLm3C5TrRE3XGucuGzYZPlXB18ievdJSwNkh5ZImdt13zEiB9ebqkKKX0N6u Ome7Ohd9OlZ5b4fSOZi5QCYD5vGw6LPdvqmdmDFtm5I5VVj8/K6xxdw05miPFKDIBIMj utEm9BjPVPBU7IBodDkfNVjs16MnbDU33M9OGr+1UDrz8RVr/8BotYFjNZrkfiEsnFTa 0U9g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding :content-language:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject; bh=lDAFvU7R+FWI6mlAIVvkDHix7/JjYoRq8sS/YA0SUq4=; b=0+y8Hub8fWF9p9N9mvymwhoHZDPW42w3HEZRZYm7PckbcKDNfbxPAn1boLN4ngnkT8 vkjl1czk5l3WzI5/slB7C04slQHkq/jetibaz+V302e4wz2VcVnjNur5r9F2JKGmKCrP e4ZdQi4OGXk21LLBt2uyss4a/slKgoK7pSa99sYw5NTzaPXdJaDhZvu/1kGpYjK9HYC+ W8jqyoY0ylset3c0IG5533cH1CVSIDR1GGRkShAm1kndvEsDP/jE0YBsYC2ZeLeBiEx+ A8wy4g/XSsWZ5w1KmazFC7KihLkp3dcfupOXNhIHrvQqPcbVBYq4o6520tdCHhFyhJq8 0SbQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i10si16719835plb.384.2019.04.04.07.53.35; Thu, 04 Apr 2019 07:53:50 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729151AbfDDOvn (ORCPT + 99 others); Thu, 4 Apr 2019 10:51:43 -0400 Received: from lb1-smtp-cloud9.xs4all.net ([194.109.24.22]:50432 "EHLO lb1-smtp-cloud9.xs4all.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1728647AbfDDOvn (ORCPT ); Thu, 4 Apr 2019 10:51:43 -0400 Received: from [192.168.2.10] ([212.251.195.8]) by smtp-cloud9.xs4all.net with ESMTPA id C3iKhU0zJiLOmC3iOhoes4; Thu, 04 Apr 2019 16:51:41 +0200 Subject: Re: kernel BUG at arch/x86/mm/physaddr.c:LINE! (2) To: Alexander Potapenko , syzbot Cc: David Miller , linux-can@vger.kernel.org, LKML , linux-media@vger.kernel.org, mchehab@kernel.org, mchehab@s-opensource.com, mkl@pengutronix.de, Networking , socketcan@hartkopp.net, syzkaller-bugs References: <0000000000001c2b95057ad0935b@google.com> <000000000000462a4105848c8e12@google.com> From: Hans Verkuil Message-ID: Date: Thu, 4 Apr 2019 16:51:36 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.4.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit X-CMAE-Envelope: MS4wfB4KEf5NAKsqemRpImhd1HXlnd6UwelePbBojk1goLetWk1/HmlujcMr48V5kEVzXAMAREDHeTmHXJ5bMHo4XV7bM/Un5yoCPq6oR1LYK1JnMcqUNGGx MROVgXOvom3aPGX7cxog/7hMspbcrw2yctvKRex75hQ2JvcIPMFUfBy61pDet7lYA7CVQHgzctYtcP6/Ad7PdFIFsweJ0x9cKuQ+Oxj7oMy9+et3K1gYKMBu Ib0ekAzhqKWP33FSkbfuh2ZXbg8sI7wzb8RmdT7xADekbSJbzmGWJYRBJnTJIYmQPBWmh+SHiJr5J2PrRLIUcxfpZIsRwMzy5VRokUw0QNBY9OrrLrBPYc9+ IqvBrqXvo/Cprhq4qSxUKtCKtCPlppQ/yObIpI2bt6TkpcLaBP0YAKifN4qoJIAecp/TI2+LxbcTSfAfuAOAgwkkEMaTPTyqsk8uWCJvRnyHBkgIN97jFell ekzshOjg9J9ke5OIcEmibDx48C2oXT3Qkcq0lEI1y9vmu+bQ838eHGwpjtqGkl+t3TSTlVLVZ2/2+FamBa3uBHiHCpV6ZED1ds9peixiVALk4wJo4zm/4cJh mZg1PNyy1k94Owb5KMbVBd0u Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 4/4/19 4:47 PM, Alexander Potapenko wrote: > On Wed, Mar 20, 2019 at 9:35 PM syzbot > wrote: >> >> syzbot has bisected this bug to: >> >> commit 6d469a202ee73196d0df76025af80bd6a379e658 >> Author: Mauro Carvalho Chehab >> Date: Sun May 14 17:07:21 2017 +0000 >> >> Merge tag 'v4.12-rc1' into patchwork >> >> bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=12639fd7200000 >> start commit: 6d469a20 Merge tag 'v4.12-rc1' into patchwork >> git tree: upstream >> final crash: https://syzkaller.appspot.com/x/report.txt?x=15639fd7200000 >> console output: https://syzkaller.appspot.com/x/log.txt?x=11639fd7200000 >> kernel config: https://syzkaller.appspot.com/x/.config?x=d86f24333880b605 >> dashboard link: https://syzkaller.appspot.com/bug?extid=6c0effb5877f6b0344e2 >> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=1312062b400000 >> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=131bd093400000 >> >> Reported-by: syzbot+6c0effb5877f6b0344e2@syzkaller.appspotmail.com >> Fixes: 6d469a20 ("Merge tag 'v4.12-rc1' into patchwork") >> >> -- >> You received this message because you are subscribed to the Google Groups "syzkaller-bugs" group. >> To unsubscribe from this group and stop receiving emails from it, send an email to syzkaller-bugs+unsubscribe@googlegroups.com. >> To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller-bugs/000000000000462a4105848c8e12%40google.com. >> For more options, visit https://groups.google.com/d/optout. > > I believe this bug is caused by vivid_vid_cap_s_selection() calling > kfree(dev->bitmap_cap). > This makes little sense, as dev->bitmap_cap seems to be allocated > using vzalloc(). > Yup, that should be vfree. There was a similar problem with bitmap_out that I fixed, but it looks I missed this one. Can you make a patch? Thanks, Hans